Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/yuSxpAWYvD9D9L0SHteu0Lbe-fw.roa
File: yuSxpAWYvD9D9L0SHteu0Lbe-fw.roa (raw, json)
Hash identifier: GTWdv6ur5XD/IM+Qp7rzfUMIKSJY7DvMRSTfbPcnlyg=
Subject key identifier: CA:E4:B1:A4:05:98:BC:3F:43:F4:BD:12:1E:D7:AE:D0:B6:DE:F9:FC
Certificate issuer: /CN=603831a61bc8a8f4cb85887022fb6f86397345dc
Certificate serial: 018CCA99800738A140A8E9B9BFB9A3481DD7
Authority key identifier: 60:38:31:A6:1B:C8:A8:F4:CB:85:88:70:22:FB:6F:86:39:73:45:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YDgxphvIqPTLhYhwIvtvhjlzRdw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/yuSxpAWYvD9D9L0SHteu0Lbe-fw.roa
Signing time: Tue 02 Jan 2024 14:35:06 +0000
ROA not before: Tue 02 Jan 2024 14:35:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198949
IP address blocks: 185.34.224.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 05 Feb 2024 13:42:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:99:80:07:38:a1:40:a8:e9:b9:bf:b9:a3:48:1d:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=603831a61bc8a8f4cb85887022fb6f86397345dc
Validity
Not Before: Jan 2 14:35:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cae4b1a40598bc3f43f4bd121ed7aed0b6def9fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:3f:a7:d4:b2:9e:ec:b6:ac:5e:30:4b:87:dd:
22:09:6a:18:28:1f:4d:af:e5:be:77:b1:6c:bf:57:
02:d5:67:cc:35:58:2b:44:cc:65:50:cc:35:47:1f:
69:78:95:43:10:e4:7d:46:19:69:5a:50:d7:92:2f:
d4:c5:81:3d:ca:73:03:e3:43:d3:5b:e7:4e:12:cd:
4b:27:02:4b:04:c4:8a:93:ab:f3:35:35:16:12:db:
6d:4e:6c:76:37:62:9d:a8:a3:8e:1a:26:90:e2:66:
10:a1:eb:b3:96:5c:7e:0e:80:0a:41:a1:98:ae:d8:
b1:e6:8d:57:d2:43:00:0a:95:6d:08:ee:80:b0:04:
e5:e4:a4:5d:d5:08:36:88:18:c5:72:8e:04:a5:d8:
28:56:dd:e8:74:49:dc:3f:99:d5:23:dd:f2:2f:d6:
e2:14:53:bc:14:4c:29:0c:72:cf:9c:19:46:31:10:
1f:eb:a6:3f:c4:ac:ad:0e:e6:aa:96:a8:23:d4:0d:
c2:7f:04:1a:44:a5:29:74:a2:b3:15:15:10:9b:f2:
bb:d6:75:9e:93:c0:2f:c9:4b:a5:95:66:c8:bb:35:
13:36:0c:d6:23:26:3a:6d:85:e8:b3:a9:c4:e3:23:
02:aa:82:c9:f1:bf:71:bb:d5:6c:6a:c0:99:4d:1a:
e5:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:E4:B1:A4:05:98:BC:3F:43:F4:BD:12:1E:D7:AE:D0:B6:DE:F9:FC
X509v3 Authority Key Identifier:
keyid:60:38:31:A6:1B:C8:A8:F4:CB:85:88:70:22:FB:6F:86:39:73:45:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YDgxphvIqPTLhYhwIvtvhjlzRdw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/yuSxpAWYvD9D9L0SHteu0Lbe-fw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/YDgxphvIqPTLhYhwIvtvhjlzRdw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.34.224.0/24
Signature Algorithm: sha256WithRSAEncryption
55:d4:3e:27:72:a9:21:cf:3a:f4:10:cf:43:c1:84:09:6f:f5:
71:54:b2:36:c1:f0:47:04:6a:b0:45:e8:35:10:01:41:3f:d9:
01:6e:7d:73:27:aa:60:82:14:7b:9a:11:d3:62:a8:20:f0:12:
ee:6f:30:12:dc:58:d2:d5:60:e9:70:e7:21:8c:6c:ee:e9:68:
b0:01:13:8c:10:51:25:d1:b8:02:a6:00:20:c0:a3:10:97:a1:
15:fc:41:f1:06:e9:37:93:30:f1:8b:15:c4:a0:6b:b1:ab:5e:
4e:1d:d9:3f:9a:d9:4d:9e:e4:07:eb:88:cd:85:5c:ec:72:50:
0d:ef:3f:30:b3:f6:df:ab:80:89:fd:6f:72:66:88:5a:32:e2:
39:90:9d:dd:6b:73:9c:bd:06:4d:b7:b4:1c:78:23:7e:fb:50:
2e:3f:d9:f9:9e:36:0f:d0:bf:94:91:3e:b8:71:77:6f:3e:04:
e6:5d:fd:29:6b:eb:6a:a4:69:c0:18:dd:8c:92:d9:d0:ec:95:
a4:e4:6b:31:62:a0:d4:fa:78:8e:03:5a:bf:8b:48:f0:b3:6a:
db:48:5a:d1:f1:ff:23:2f:ca:ac:b9:cd:78:da:3c:e0:ae:6e:
ba:d4:e3:b1:27:af:65:76:41:4b:31:ef:01:de:64:fb:e0:a0:
a0:ca:41:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:32 2024 by rpki-client on console-ams.rpki-client.org